
United States Patent and Trademark Office 



UNITED ffTASd DEPARTMENT OF COMMERCE 
United Sfates mttnt and Trademark Ofllcc 
Address:^MMK)BIONER FOR PATENTS 

A^Sfia, Virginia 223 1 3-1450 



NO. I 



APPLICATION NO. 



FILING DATE 



FIRST NAMED INVENTOR 



ATTORNEY DOCKET 



CONFIRMATION NO. 



09/608,103 



06/30/2000 



Christopher L. Hamlin 



26332 7590 10/11/2005 

WESTERN digital CORP. 
205 1 1 LAKE FOREST DRIVE 

C205 - INTELLECTUAL PROPERTY DEPARTMENT 
LAKE FOREST, CA 92630 



IC35A0631 



1085 



EXAMINER 



COLIN, CARL G 



ART UNIT 



PAPER NUMBER 



2136 

DATE MAILED: 10/11/2005 



Please find below and/or attached an Office communication concerning this application or proceeding. 



PTO-90C (Rev. 10/03) 



Office Action Summary 


Application No. 

09/608.103 


Applicant(s) 

HAMLIN, CHRISTOPHER L 


Examiner 
Carl Colin 


Art Unit 

2136 





- The MAILING DATE of this communication appears on the cover sheet with the correspondence address - 
Period for Reply 

A SHORTENED STATUTORY PERIOD FOR REPLY IS SET TO EXPIRE 3 MONTH(S) FROM 
THE MAILING DATE OF THIS COMMUNICATION. 



- Extensions of tinne may be available under the provisions of 37 CFR 1 .136(a). In no event, however, may a reply be timely filed 
after SIX (6) MONTHS from the mailing date of this communication. 

- If the period for reply specified above is less than thirty (30) days, a reply within the statutory minimum of thirty (30) days will be considered timely. 

- If NO period for reply is specified above, the maximum statutory period will apply and v^rill expire SIX (6) MONTHS from the mailing date of this communication. 

- Failure to reply within the set or extended period for reply will, by statute, cause the application to become ABANDONED (35 U.S.C. § 133). 

- Any reply received by the Office later than three months after the mailing date of this communication, even if timely filed, may reduce any 
earned patent term adjustment. See 37 CFR 1.704(b). 

Status 

1)1^ Responsive to communication(s) filed on 29 April 2005 and 22 September 2005 . 
2a)n This action is FINAL. 2b)^ This action is non-final. 

3) 0 Since this application is in condition for allowance except for fomial nnatters, prosecution as to the nnerits is 

closed in accordance with the practice under Ex parte Quayle, 1 935 CD, 1 1 , 453 0,G. 21 3. 
Disposition of Claims 

4) 13 Claim(s) 7-76 is/are pending in the application. 

4a) Of the above claim(s) is/are withdrawn from consideration. 

5) 0 Claim(s) is/are allowed. 

6) M Claim(s) 1-16 is/are rejected. 
?)□ Claim(s) is/are objected to. 

8) 0 Claim(s) are subject to restriction and/or election requirement. 

Application Papers 

9) 0 The specification is objected to by the Examiner. 

10) ^ The drawing(s) filed on 26 April 2004 is/are: a)^ accepted or b)^ objected to by the Examiner. 

Applicant may not request that any objection to the drawing(s) be held in abeyance. See 37 CFR 1 .85(a). 

1 1) n The proposed drawing correction filed on is: a)n approved b)n disapproved by the Examiner. 

If approved, corrected drawings are required in reply to this Office action. 

12) 0 The oath or declaration is objected to by the Examiner. 
Priority under 35 U.S.C. §§119 and 120 

1 3) 0 Acknowledgment is made of a claim for foreign priority under 35 U.S.C. § 1 1 9(a)-(d) or (0- 

a)nAII b)a Some*c)n None of: 

1 .□ Certified copies of the priority documents have been received. 

2. n Certified copies of the priority documents have been received in Application No. . 

3. n Copies of the certified copies of the priority documents have been received in this National Stage 

application from the International Bureau (PCT Rule 17.2(a)). 
* See the attached detailed Office action for a list of the certified copies not received. 

14) 0 Acknowledgment is made of a claim for domestic priority under 35 U.S.C. § 1 19(e) (to a provisional application). 

a) □ The translation of the foreign language provisional application has been received. 

15) 0 Acknowledgment is made of a claim for domestic priority under 35 U.S.C. §§ 120 and/or 121. 
Attachment(s) 

1) S Notice of References Cited (PTO-892) 4) □ Inten/iew Summary (PTO-413) Paper No(s). . 

2) □ Notice of Draftsperson's Patent Drawing Review (PTO-948) 5) □ Notice of Informal Patent Application (PTO-152) 

3) n Information Disclosure Statement(s) (PTO-1449) Paper No(s) . 6) O Other: 
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DETAILED ACTION 

Response to Arguments 

1 . In response to communications filed on 9/22/2005, Applicant's request for 
reconsideration of the finality of the rejection of the last Office action due to examiner's new 
ground of rejection based on Trieger is persuasive and, therefore, the finality of that action is 
withdrawn. 

2. In response to communications filed on 4/29/2005, the following claims 1-16 are 
presented for examination. 

2.1 Applicant's remarks, pages 2-4, filed on 4/29/2005, with respect to the rejection of claims 
1-16 have been fully considered, but they are moot in view of a new ground of rejection. 
Applicant's remarks on 9/22/2005, regarding the rejection in view of Trieger, Stokes, and Burns 
are not persuasive. Applicant's interpretation of the office action is wrong because Examiner 
does not concede that Trieger does not disclose generating client drive key based on secure drive 
key. Regarding Burns, there is disclosure that a device nonce is included in the hash. In 
addition, the limitation key "for use in generating a message authentication code" is an intended 
use. Claims 1-16 are rejected in view of Trieger, Stokes, and Burns. 
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Claim Rejections - 35 USC § 103 
3. The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or 
described as set forth in section 102 of this title, if the differences between the subject matter 
sought to be patented and the prior art are such that the subject matter as a whole would have 
been obvious at the time the invention was made to a person having ordinary skill in the art to 
which said subject matter pertains. Patentability shall not be negatived by the manner in which 
the invention was made. 

3.1 Claims 1-16 are rejected under 35 U.S.C. 103(a) as being unpatentable over US Patent 
6,226,750 to Trieger in view of US Patent 6,473,861 to Stokes and in view of US Patent 
5,931,947 to Burns et al. 

3.2 As per claims 1, 4-9, and 12-16, Trieger substantially teaches a secure disk drive 
comprising: a disk for storing data (see column 6, lines 5-30); (b) and fijrther discloses a message 
input for receiving the encrypted message from the client disk drive and a data output for 
outputting the ciphertext data to be written to server's data storage area (see figure 5 and column 
11, lines 44-67), the encrypted message comprising ciphertext data and a device ID identifying 
the client disk drive (see column 10, Hnes 43-63; column 7, lines 48-55); messages are preferably 
encrypted (column 9, lines 55-63); and discloses a generator for generating client drive keys 
based on client drive ID and state information (secure drive key) sent by the client for use to 
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authenticate the client drive DD (column 11, lines 30-55 and column 10, line 57 through column 
11, line 2 ), Trieger also discloses a key validation process in the server for verifying the 
authenticity of the encrypted message and generating an enable signal, the authenticator 
responsive to the encrypted message and the client drive key (see column 10, line 57 through 
column 11, line 30); a reply output for outputting reply data and a new key that meets the 
recitation of internal drive ID (column 1 1, lines 43-46). Although Trieger discloses a secure 
drive that authenticates a client drive when receiving encrypted request message and output a 
reply comprising a reply data and a key, Trieger does not explicitly disclose a secure drive key 
comprising tamper resistant circuit and internal drive ED. Stokes in an analogous art discloses a 
secure disk drive comprising: a disk for storing data, secure drive key and internal drive ID, and 
internal drive keys (see abstract and column 7, lines 16-25); tamper resistant circuitry for storing 
keys so that any attempt to open the disk drive will result in an erasure of stored encryption key 
material (column 4, Unes 12-25 and column 7, line 50 through column 8, line 18; and see also 
column 8, lines 48-67). Therefore, it would have been obvious to one of ordinary skill in the art 
at the time the invention as combined above to modify the secure disk drive of Trieger to 
provide a tamper resistant circuitry for storing keys and to provide secure drive key and internal 
drive ID for use to authenticate user access (improper user access may lock up the disk drive) as 
taught by Stokes. This modification would have been obvious because one skilled in the art 
would have been motivated to do so to provide a drive housing that contains optical and 
magnetic drives, data encryption and formatted modules and erasable memory device with 
protective mechanism that automatically erases keys in the event of tampering (see column 3, 



Application/Control Number: 09/608, 1 03 Page 5 

.AxtUnit: 2136 

lines 1-20) and adds additional layer of protecting access by validating user ED or key based on 
drive keys or internal keys (see column 8, lines 13-67) as suggested by Stokes. 

Trieger does not explicitly disclose reply data comprising message authentication code . 
Burns et al in an analogous art discloses a data processor comprising: a key input for receiving 
an internal drive key (see column 8, lines 10-55), internal drive key for use in generating 
message authentication code (column 9, lines 1-18). Burns et al further discloses different 
protocols in authenticating a response including generating internal drive key based on internal 
drive ID and secure drive key, for example (see column 8, lines 10-55 and column 9, line 37 
through column 10, line 25) and after the request is validated, outputting reply data comprising 
message authentication code (column 9, lines 14-18) the reply may also contain internal drive ED 
(column 10, lines 21-67). Therefore, it would have been obvious to one of ordinary skill in the 
art at the time the invention as combined above to modify the authentication steps of Trieger to 
provide a validation system where all data requests from clients and responses to them are 
authenticated using keys derived from secure drive keys and hashed message authentication 
codes as taught by Burns et aE The motivation to do so is given by Burns et al who teaches 
that the advantage of this process guarantees freshness preventing replay because nonces are 
used in the EEMAC therefore other entities cannot impersonate either of the devices (column 7, 
line 55 through column 8, line 4 and column 8, lines 40-53). 

As per claims 2 and 10, Stokes discloses the limitation of using a secure drive key that 
is immutable (see column 4, lines 13-15). Therefore these claims are rejected on the same 
rationale as the rejection of claim 1. 
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As per claims 3 and 11, the combined references above discloses generating new key 
that is mutable in order to invalidate previously issued external client keys (see Trieger, column 
1 1, lines 8-20; see Burns et al, column 14, line 34-42). Therefore these claims are rejected on 
the same rationale as the rejection of claim 1. 



examiner should be directed to Carl Colin whose telephone number is 571-272-3862. The 
examiner can normally be reached on Monday through Thursday, 8:00-6:30 PM. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Ayaz Sheikh can be reached on 571-272-3795. The fax phone number for the 
organization where this application or proceeding is assigned is 703-872-9306. 

Information regarding the status of an application may be obtained from the Patent 
Application Information Retrieval (PAIR) system. Status information for pubUshed applications 
may be obtained from either Private PAIR or Public PAIR. Status information for unpublished 
applications is available through Private PAIR only. For more information about the PAIR 
system, see http://pair-direct.uspto.gov . Should you have questions on access to the Private 
PAIR system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll-free). 



Conclusion 



4. 



Any inquiry concerning this communication or earlier communications from the 



Carl CoHn 
Patent Examiner 
October 5, 2005 




